Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2019-0016)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2019.0016

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2019-0016)

Resumen: The remote host is missing an update for the 'aubio' package(s) announced via the MGASA-2019-0016 advisory.

Descripción: Summary:
The remote host is missing an update for the 'aubio' package(s) announced via the MGASA-2019-0016 advisory.

Vulnerability Insight:
NULL pointer dereference in the function aubio_source_avcodec_readframe
which may lead to DoS when playing a crafted audio file (CVE-2017-17554).

A crash in aubio_pitch_set_unit (CVE-2018-14522).

A buffer overrread resulting in crash or information leakage in
new_aubio_pitchyinfft (CVE-2018-14523).

Affected Software/OS:
'aubio' package(s) on Mageia 6.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-17554
https://github.com/IvanCql/vulnerability/blob/master/An%20NULL%20pointer%20dereference(DoS)%20Vulnerability%20was%20found%20in%20function%20%20aubio_source_avcodec_readframe%20of%20aubio.md
Common Vulnerability Exposure (CVE) ID: CVE-2018-14522
https://github.com/aubio/aubio/issues/188
SuSE Security Announcement: openSUSE-SU-2019:1049 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00031.html
SuSE Security Announcement: openSUSE-SU-2019:1229 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00071.html
Common Vulnerability Exposure (CVE) ID: CVE-2018-14523
https://github.com/aubio/aubio/issues/189

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2019.0016
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2019-0016)
Resumen:	The remote host is missing an update for the 'aubio' package(s) announced via the MGASA-2019-0016 advisory.
Descripción:	Summary: The remote host is missing an update for the 'aubio' package(s) announced via the MGASA-2019-0016 advisory. Vulnerability Insight: NULL pointer dereference in the function aubio_source_avcodec_readframe which may lead to DoS when playing a crafted audio file (CVE-2017-17554). A crash in aubio_pitch_set_unit (CVE-2018-14522). A buffer overrread resulting in crash or information leakage in new_aubio_pitchyinfft (CVE-2018-14523). Affected Software/OS: 'aubio' package(s) on Mageia 6. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-17554 https://github.com/IvanCql/vulnerability/blob/master/An%20NULL%20pointer%20dereference(DoS)%20Vulnerability%20was%20found%20in%20function%20%20aubio_source_avcodec_readframe%20of%20aubio.md Common Vulnerability Exposure (CVE) ID: CVE-2018-14522 https://github.com/aubio/aubio/issues/188 SuSE Security Announcement: openSUSE-SU-2019:1049 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00031.html SuSE Security Announcement: openSUSE-SU-2019:1229 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00071.html Common Vulnerability Exposure (CVE) ID: CVE-2018-14523 https://github.com/aubio/aubio/issues/189
Copyright	Copyright (C) 2022 Greenbone AG